15 Actions

How do you detect load balancing?A non-standard cookie could be one that was not added by the web application or server in a single server setup that would help give away that the site is behind a load balancer. The headers may also be different and set to a non-standard webserver that is specific to load balancers.

What are the likely threats to a public-facing DB instance?With the security risks involved, I would advise speaking with your management on this so they are fully informed about what you are wanting to do and how you will be securing it. As normally it is Senior Management that makes the decision on the cost vs risk decisions and the engineers/administrators implement it.

What are the likely threats to a public-facing DB instance?Using SSL will help prevent ease dropping on the SQL user credentials which by default are transmitted in plain text. If not encrypted all they would need to do is listen to database traffic to see the credentials. With the credentials protected it lowers the possibility of others using credentials of the database in their own application that might have SQL injection flaws. If they do not have those credentials they cannot do anything in terms of SQL, but there is still the possibility of the server being exploited if they used a 0-day exploit.

Sep9

comment

What are the likely threats to a public-facing DB instance?As being the DBA/System administrator you job is to insure security of the Systems. Allowing any ip access is removing a critical part of securing access to the database. From the comment from Steve it sounds like he wants to remove the use of a VPN which reduces the security another layer. If the database was exploited a 3rd party could gain access and make an app to use the database which could be vulnerable to SQL injection. You can be fired for not securing the systems/data you are hired to protect.